Skip Navigation

Eficode Bolsters Partnership With Sonatype, Extends Best-In-Class Software Composition Analysis With Hosted Solutions


As cloud transformations accelerate, Eficode makes shifting security left even easier by offering the Sonatype Nexus platform as part of its Eficode ROOT DevOps platform

Helsinki, Finland -- Thursday, Dec. 10, 2020 -- Eficode, Europe’s leading DevOps company, announced an expanded partnership with Sonatype, the leading provider of innovation-friendly open source security tools, to include management, hosting and licensing. This enables Eficode customers to have premium software composition analysis (SCA) and access to Sonatype unrivaled, in-depth open source intelligence and policy engine as a managed service and in the cloud, through the Eficode ROOT DevOps platform

According to IDG’s 2020 Cloud Computing Study , 92 percent of organizations said they are at least ‘somewhat’ in the cloud, with the budget for cloud and SaaS priorities only growing more over the next 12 months. The survey also notes that almost a third (32%) of all IT budgets already go toward cloud offerings. This highlights how the current climate has increased the already rapid growth the SaaS and cloud market was seeing. Moving into 2021, Eficode has pledged to help all customers transform to a full DevOps cloud project within its ROOT platform. This includes ensuring they have premium SCA capabilities from Sonatype and the ability to innovate faster and easily mitigate security risk inherent in open source, throughout the application development lifecycle.

“We know how vital application security is to our customers’ digital and DevOps transformations. We also know how important open source is to these transformations and continued innovation. But, as exploitation of software vulnerabilities continues to increase, it’s critical that organizations understand what components they’re using and what to do if one of those components has a vulnerability,” said Marko Klemetti, CTO  of Eficode. “With Sonatype, our clients can quickly gain insight into their application technology stack, providing key insight into the risks and threats posed by modern software development practices. By offering the Sonatype Nexus platform through our Eficode ROOT  managed service, we’re able to bring this understanding and peace of mind to more companies in Europe.” 

The Sonatype Nexus platform is an essential part of Eficode ROOT DevOps platform to perform software composition analysis in the cloud. It automatically enforces open source governance and controls risk across every phase of the SDLC. Fueled by Nexus Intelligence, which includes in-depth security, license, and quality information on more than 100M open source components across dozens of ecosystems, the platform precisely identifies open source risk and provides expert remediation guidance, empowering developers to innovate faster. Only Nexus secures the perimeter and every phase of the SDLC, including production, by continuously monitoring for new risk based on your open source policies.

“Eficode knows the DevOps space better than anyone, and we have seen time and time again how valuable a partner they are,” said Wai Man Yau, General Manager International Sonatype. “By expanding our relationship and creating a managed service solution, Eficode is making it even easier for enterprises to access Sonatype’s open source intelligence and Nexus platform to protect their software supply chains. We’re proud to continue working with Eficode to bring developers and organizations the information they need to develop better software, faster while expanding Sonatype’s footprint.” 

Eficode and Sonatype already share a myriad of enterprise customers and are committed to driving even more cloud transformations in 2021.

Additional Resources 

To learn more about how Eficode or Sonatype can help your organisation build safe, secure, high quality software, visit and

About Eficode

Eficode is the leading DevOps company in Europe, driving the DevOps movement and building the future of software development together across seven countries with more than 300 professionals. 

The Eficode ROOT is a leading DevOps platform which spans the entire software development life cycle, from requirements management to Continuous Delivery and analytics, integrating together tools such as the Atlassian stack and open source systems like Jenkins and Kubernetes. The platform comes as a managed service in the cloud. 

Combining DevOps expertise with world-leading automation and tool integrations, Eficode ROOT provides centralized access control and real-time visibility of project status, quality, and performance. For more information, visit

About Sonatype 

Sonatype is the leader in software supply chain automation technology with more than 350 employees, over 1,200 enterprise customers, and is trusted by more than 10 million software developers.  Sonatype’s Nexus platform enables DevOps teams and developers to automatically integrate security at every stage of the modern development pipeline by combining in-depth component intelligence with real-time remediation guidance. For more information, please visit, or connect with us on Facebook, Twitter, or LinkedIn.